Security Headlines with Johnny Xmas

https://is1-ssl.mzstatic.com/image/thumb/Podcasts115/v4/b0/64/80/b0648074-941b-5370-1b0e-6d0475806689/mza_13084197499987448562.jpg/600x600bb.jpg

Security Headlines

Firo Solutions

25 episodes

3 days ago

Security Headlines is a podcast about the latest security vulnerabilities with in the cyber security field. So if your interested about the latest security holes no mather if you are a tech savy penetration tester, a devops person, a programmer or just generally interested in the latest technology security news. Security headlines is here for you Security headlines is perfect to listen on when you want a quick update, on the way to work or when you are taking a walk out side The podcast is produced by firosolutions.com

Tech News

News

RSS

All content for Security Headlines is the property of Firo Solutions and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Tech News

News

https://d3t3ozftmdmh3i.cloudfront.net/production/podcast_uploaded_episode/3758595/3758595-1604055833667-c576c82a30953.jpg

Security Headlines with Johnny Xmas

Security Headlines

1 hour 41 minutes 15 seconds

5 years ago

Security Headlines with Johnny Xmas

In this episode of Security Headlines, we are joined by

the Hacker Johnny Xmas. Johnny is a very interesting character

with a lot of fun projects behind him.

Join us as we get to hear Johnny's stories as we deep dive

into this weeks episode of Security Headlines:

## Venmo

After giving a talk about it and releasing software that made everyone

able to easily abuse this, Luckily venmo took action and limited the

amount of data avaliable. Johnny found a way to generate api keys with

just making a simple request to the

## Bypassing Webb application firewalls

A lot of firewalls just focus on IP filtering which is a huge problem

when, in todays world it is really easy and cheap for a consumer

to aquire a large sets off ip addresses.

One provider of proxied ip addresses is Hola VPN that lets their free

users act as exit nodes that they sell using platforms such as luminate.

Other people have adopted this approach but with mobile development toolkits.

## Grimm

Johnny is currently working for the security engineering firm Grimm, a company known for its involvement in the ICS(Industrial control system) security work.

Currently working on developing

Grimm is currently hiring people, do you want to get paid to develop security training platforms ?

then Grimm is the place for you!

External links:

https://twitch.tv/j0hnnyxm4s

https://twitter.com/J0hnnyXm4s/

https://www.youtube.com/c/JohnnyXmas/

https://github.com/johnnyxmas/Talk_Decks/tree/master/2019/Sorry%20about%20your%20WAF

https://ghost.express/

https://www.cnbc.com/2020/05/07/zoom-buys-keybase-in-first-deal-as-part-of-plan-to-fix-security.html

https://www.twitch.tv/mr_horologist

https://twitter.com/cigarsec

https://www.icsvillage.com/

https://www.grimm-co.com/careers

https://en.wikipedia.org/wiki/Venmo

https://www.technowize.com/grindr-security-flaw-lets-anyone-hijack-user-accounts/

https://en.wikipedia.org/wiki/Principle_of_least_privilege

https://en.wikipedia.org/wiki/Branched-chain_amino_acid

https://opihr.com/

https://en.wikipedia.org/wiki/Sub7

https://nmap.org/book/man-nse.html

https://en.wikipedia.org/wiki/Less_Than_Jake

https://en.wikipedia.org/wiki/Oh,_Sleeper

https://luminati.io/

https://selenium.dev/

https://blog.firosolutions.com